CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5093 matches found

OSV•added 2025/02/26 7:1 a.m.•4 views

AZL-58356 CVE-2022-49636 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: vlan: fix memory leak in vlannewlink Blamed commit added back a bug I fixed in commit 9bbd917e0bec "vlan: fix memory leak in vlandevsetegresspriority" If a memory allocation fails in vlanchangelink after other allocations...

5.5CVSS6.3AI score0.00009EPSS

Exploits0References1

OSV•added 2025/02/26 7:1 a.m.•1 views

DEBIAN-CVE-2022-49636

5.5CVSS5.5AI score0.00009EPSS

Exploits0References1

OSV•added 2025/02/26 7:1 a.m.•1 views

DEBIAN-CVE-2022-49326

In the Linux kernel, the following vulnerability has been resolved: rtl818x: Prevent using not initialized queues Using not existing queues can panic the kernel with rtl8180/rtl8185 cards. Ignore the skb priority for those cards, they only have one tx queue. Pierre Asselin [email protected] reported t...

5.5CVSS5.7AI score0.00011EPSS

Exploits0References1

NVD•added 2025/02/26 7:1 a.m.•8 views

CVE-2022-49326

5.5CVSS0.00011EPSS

Exploits0References9

OSV•added 2025/02/26 7:1 a.m.•0 views

UBUNTU-CVE-2022-49603

In the Linux kernel, the following vulnerability has been resolved: ip: Fix data-races around sysctlipfwdupdatepriority. While reading sysctlipfwdupdatepriority, it can be changed concurrently. Thus, we need to add READONCE to its readers...

4.7CVSS6.1AI score0.0001EPSS

Exploits0References7

OSV•added 2025/02/26 7:1 a.m.•0 views

UBUNTU-CVE-2022-49636

5.5CVSS6.1AI score0.00009EPSS

Exploits0References25

CVE•added 2025/02/26 2:23 a.m.•168 views

CVE-2022-49636

CVE-2022-49636 affects the Linux kernel VLAN code, specifically a memory leak in vlan_newlink/vlan_changelink paths. The issue arises when a memory allocation fails in vlan_changelink() after prior allocations succeed; memory allocated for egress priority/vlan_dev structures may remain referenced...

5.5CVSS5.4AI score0.00009EPSS

Exploits0References5Affected Software1

OSV•added 2025/02/26 2:23 a.m.•13 views

CVE-2022-49636 vlan: fix memory leak in vlan_newlink()

5.5CVSS6AI score0.00009EPSS

Exploits0References8

Vulnrichment•added 2025/02/26 2:23 a.m.•2 views

CVE-2022-49603 ip: Fix data-races around sysctl_ip_fwd_update_priority.

6.6AI score0.0001EPSS

Exploits0References4

Debian CVE•added 2025/02/26 2:23 a.m.•7 views

CVE-2022-49603

4.7CVSS5.3AI score0.0001EPSS

Exploits0

Cvelist•added 2025/02/26 2:10 a.m.•14 views

CVE-2022-49326 rtl818x: Prevent using not initialized queues

0.00011EPSS

Exploits0References9

OSV•added 2025/02/26 2:10 a.m.•12 views

CVE-2022-49326 rtl818x: Prevent using not initialized queues

5.5CVSS5.3AI score0.00011EPSS

Exploits0References12

CVE•added 2025/02/26 2:10 a.m.•104 views

CVE-2022-49326

CVE-2022-49326 affects RTL818x wireless in Linux kernel (rtl8180/rtl8185/rtl8187se family). The issue arises from using not initialized tx queues, where reading ring->entries when zero can crash the kernel. The fix patches the driver to ignore priority for cards with a single TX queue and to p...

5.5CVSS6.4AI score0.00011EPSS

Exploits0References9Affected Software1

Wallarm Lab•added 2025/02/20 11:51 a.m.•6 views

DORA: Strengthening Digital Resilience Through API Security

The Digital Operational Resilience Act DORA is one of the most significant cybersecurity regulations for financial institutions in the European Union EU. Failure to comply can have massive consequences, including financial penalties and forced operational downtime, meaning achieving DORA complian...

7.5AI score

Exploits0

SUSE CVE•added 2025/02/14 7:11 a.m.•9 views

SUSE CVE-2022-48921

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix fault in reweightentity Syzbot found a GPF in reweightentity. This has been bisected to commit 4ef0c5c6b5ba "kernel/sched: Fix schedfork access an invalid schedtaskgroup" There is a race between schedpostfork and...

5.5CVSS6.1AI score0.00022EPSS

Exploits0References8

CNNVD•added 2025/02/11 12:0 a.m.•2 views

CtrlPanel-gg 跨站脚本漏洞

CtrlPanel-gg is an easy-to-use and free billing solution from CtrlPanel-gg open source. A cross-site scripting vulnerability exists in versions of CtrlPanel-gg prior to 1.0 that stems from insufficient input validation of the Priority field during the creation of a work order and insecure renderi...

8.1CVSS5.8AI score0.00101EPSS

Exploits0References1

Packet Storm News•added 2025/01/14 12:0 a.m.•2 views

CISA: Secure by Demand: Priority Considerations

This is CISA's Secure by Demand: Priority Considerations for Operational Technology Owners and Operators when Selecting Digital Products. This guide is intended to help owners and operators procure Operational Technology OT products, particularly industrial automation and control system products,...

7AI score

Exploits0

Vulnrichment•added 2024/12/30 9:50 a.m.•8 views

CVE-2024-47922 Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor...

7.5CVSS7.5AI score0.00144EPSS

Exploits0References1

CNNVD•added 2024/12/30 12:0 a.m.•2 views

Priority 信息泄露漏洞

Priority is an ERP solution from Priority Israel. An information disclosure vulnerability exists in Priority versions prior to 24.1 that originates from exposing sensitive information to unauthorized actors...

7.5CVSS6.1AI score0.00144EPSS

Exploits0References1

Positive Technologies•added 2024/12/30 12:0 a.m.•3 views

PT-2024-32898 · Priority · Pri Web

Name of the Vulnerable Software and Affected Versions: Priority affected versions not specified Description: The issue involves exposure of sensitive information to unauthorized actors, classified as CWE-200. This means that sensitive data may be accessible to individuals who are not supposed to...

7.5CVSS6.8AI score0.00144EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by